Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search USNs
USN ID, name, description or CVE ID contains
81 - 90 of 265 results
15 May 2023
USN-6060-1 introduced a regression in MySQL.
- Ubuntu 23.04 ,
- 22.10 ,
- 22.04 LTS,
- 20.04 LTS
15 May 2023
Several security issues were fixed in Thunderbird.
- Ubuntu 23.04 ,
- 22.10 ,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS
CVE ID
CVE-2023-32206, CVE-2023-32215, CVE-2023-32211 + 4 others
11 May 2023
os-brick could be made to expose sensitive information.
- Ubuntu 23.04 ,
- 22.10 ,
- 22.04 LTS,
- 20.04 LTS
CVE ID
11 May 2023
Nova could be made to expose sensitive information.
- Ubuntu 23.04 ,
- 22.10 ,
- 22.04 LTS,
- 20.04 LTS
CVE ID
11 May 2023
Glance_store could be made to expose sensitive information.
- Ubuntu 23.04 ,
- 22.10 ,
- 22.04 LTS,
- 20.04 LTS
CVE ID
11 May 2023
Cinder could be made to expose sensitive information.
- Ubuntu 23.04 ,
- 22.10 ,
- 22.04 LTS,
- 20.04 LTS
CVE ID
10 May 2023
Open vSwitch could be made to stop forwarding packets if it received specially crafted network traffic.
- Ubuntu 22.10 ,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS
CVE ID
10 May 2023
SQL parse could be made to denial of service if it received a specially crafted regular expression.
- Ubuntu 23.04 ,
- 22.10 ,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS
CVE ID
9 May 2023
Several security issues were fixed in Ceph.
- Ubuntu 22.10 ,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS
CVE ID
CVE-2021-3979, CVE-2022-3854, CVE-2022-3650 + 1 other
9 May 2023
FreeType could be made to crash or possibly execute arbitrary code if it opened a specially crafted font file.
- Ubuntu 23.04 ,
- 22.10 ,
- 22.04 LTS,
- 20.04 LTS
CVE ID
Resources
Join the discussion
Canonical is offering
Expanded Security Maintenance
Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.